After my 112 Days of Summer article, I of course wanted to check on how many additional breaches were REPORTED and how many records were EXPOSED. I knew it would be bad, like not flossing your teeth regularly and showing up at the dentist knowing what he would say. So I went to the Identify Theft Resource website and clicked on the Summary of 2015 Reported Breaches and there was that damn drill, staring me in the face. I knew the pain would be bad but OUCH!!!
I recently discussed the growing concerns of cyber security among business owners with Emily Collins of Arizona Business News. The threats of cyber attacks on businesses are growing and business owners need to be prepared. Watch the video clip below to hear my thoughts on what changes to cyber security infrastructure need to happen to make businesses less susceptible of being hacked.
As we approach the upcoming 100 days of summer, I reflect on the 6.734 Million records that were breached in the top 10 breaches during the summer of 2014. Do you think what we have seen so far this year will be any indication?
According to the Identity Theft Resource Center, as of May 19, 2015 there have been 304 REPORTED breaches with 101,858,356 REPORTED records breached. Now as I have stated in previous posts, the number of actual records known is only 46%. Therefore, 55% of the reported breaches indicated that the number of records breached is UNKNOWN. WOW! [Read more…]
OMG!!! Through Nov 3, 2014 there have been a 644 REPORTED breaches that equates to 78,161,407 records exposed. You need to understand that almost half of these reported breaches DO NOT KNOW the number of records exposed so the damage is far greater. This is a comprehensive document with summaries and full details. I encourage you to continue to use this reference as you see fit for your overall security program.
Risky Business #30
I bought a hammer and a can of paint – HACKED. I bought a pair of slippers – HACKED. I had dinner with my family at our favorite fancy Chinese restaurant – HACKED. I was tired during a business trip and I decided to stay over in a nice cozy room – HACKED. And now, can it be true? I went for a medium soft serve ice cream cone – HACKED. And just before the release of the movie ‘Alexander and the Terrible, Horrible, No Good, Very Bad Day’ is he a CISO? Review the recent data on reported breaches – the numbers continue to rise like a thermometer in the mouth of a sick child.
Risky Business News Flash # 26
Bank Info Security recently released an article summarizing the new guidance issued by the OCC: More Third-Party Risk Guidance, Merchant Processing. This provides updated guidance for examiners and banks about how they assess and manage risks associated with card-related payments processing. Remember in late 2013 OCC released a new bulletin 2013-29 managing risk associated with 3rd parties. As we can see, there will continue to be more regulations and guidance focusing on this high risk area.